Microsoft Intune Reviews

I have been using the enterprise application management features of Microsoft Intune Suite for couple of years now. 

We're deploying security baselines and configuration profiles (GPO) with ease. Tasks that could take much more time if done from the DC.

The features of Microsoft Intune that I appreciate the most are its user-friendly interface and robust security options.

I assess the user experience of Microsoft Intune as positive overall.

I think their advanced endpoint analytics help me proactively.

I would assess Cloud PKI for helping me manage the complexity of the certificate infrastructure as beneficial.

Microsoft Intune could be improved by enhancing its reporting functionalities (for entry level license).

I would request additional features in the next release of Microsoft Intune.

Two years

I would rate their support from 1 to 10 as a solid 8.

Positive

Ivanti Landesk, we switched mostly because prior platform was facing EOL.

I have not yet had ROI with Microsoft Intune.

I expect to see a return on investment in Microsoft Intune approximately in the next few months.

The pricing licensing model of Microsoft Intune seems competitive.

Give our company MS agreement, it was just a no-brainer.

I work for Viscofan S.A. as an Information Technology Modern Workplace Management. My email address is JAURIETAC.

I am interested in being a reference for Microsoft, and they can contact me if they have any questions regarding my review.

Public Cloud

I am an IT consultant, and I mainly advise my customers on how to implement Microsoft 365 solutions like Microsoft Intune within small and large companies.

First of all, the integration with the rest of Microsoft's products is a major win. Secondly, it comes from a vendor for which we manage most of the operating systems, which is a big plus. 

As a software-as-a-service, it is updated monthly, meeting all the new functionality provided by the operating system vendors. If I don't have an endpoint management solution, I must go to each computer individually to harden systems, install software and data. 

Comparing this to having an endpoint management solution, the efficiency gain may be up to 80%.

The biggest challenge Microsoft has with its own product is supporting all the versions of its own product as well. A major challenge is making all the products work within device management solutions like Intune. It would be beneficial if Microsoft removed support for older products much earlier in the process. 

However, given that they have paying customers, it's not something they can easily do. Ideally, we would have a product capable of managing the latest versions of the operating systems without having to deal with outdated systems.

I have been using the product actively for about five to seven years.

Customer service is not really good. I would give it a six out of ten. The main issue is the time it takes to get someone involved who truly understands what the product does and what the real issue is. I do realize that my support requests are the more advanced ones. 

Neutral

Getting used to working with a product like Intune is easier if I'm already familiar with other Microsoft products, as many companies are. The adoption rate is quite fast. Other vendors provide good solutions as well. Ultimately, it depends on what I am accustomed to. If I have worked for 20 years with VMware technology, then adopting the VMware endpoint management solution might be easier than switching to Microsoft Intune.

It really saves time and resources. As mentioned earlier, I need not go to each machine to update it and install software when using a device management solution. The efficiency gain might be between 60% to 80% compared to other products. If compared to another product I am accustomed to, the results may vary.

As a consultant, I advise customers and help them implement it. In addition, I offer a service where customers purchase configuration updates from me on a subscription basis. I ensure the Intune environment and other products remain up-to-date. 

Microsoft is doing a good job in this area, and many customers who ask for my help already pay for the license. Cloud PKI has similar issues, where other vendors provided that functionality before. Customers who needed it previously adopted third-party solutions. 

Now, Cloud PKI has been available for a year, serving as a good alternative provided by Microsoft, although many customers continue to stick with solutions they had already adopted. 

My overall rating for this solution is eight out of ten.

We usually use Microsoft Intune to manage our devices and add security layers to protect access to all company resources.

The main benefit for us with Microsoft Intune is centralized management of all devices, allowing us to apply one policy across the company from one location.

What I like the most about Microsoft Intune is its ability to manage mobile devices. Through integration with System Center, it can also manage desktops and laptops. We also appreciate how easy it is to manage everything from the console.

The enterprise application management feature lets you manage, deploy, or uninstall applications from Intune. It also enables us to automate updates. The Cloud PKI feature helps us manage security keys on all company devices. 

Intune should improve the management of non-Microsoft devices. It would be better to manage Mac, Android, and other non-Microsoft operating system devices within the same Intune interface.

I have been using Microsoft Intune for almost five years now.

I rate Microsoft Intune nine out of 10 for stability.

We are not a huge company to check the scalability part. However, when discussing with our customers across the region, it seems fine, especially with the integration with System Center.

I rate Microsoft support nine out of 10. We have not used customer support, but it seems okay. If something happens, we open a case and receive assistance.

Positive

While I didn't perform the initial deployment, I know it's easy to roll out Intune across all devices. 

From the device perspective, particularly for desktops, it automates application deployment and secures all the devices. Importantly, when someone leaves the company, it helps protect document access on their devices. Onboarding and offboarding users is a great asset in terms of ROI.

We are partners, so we receive some discount. However, from the customer's perspective, Microsoft Intune's pricing is competitive with non-Microsoft technology, and the price is good compared to other market competitors.

I rate Microsoft Intune nine out of 10.

Public Cloud

We use Microsoft Intune to manage mobile devices for our parent company and our independent subsidiaries. These devices are not directly corporate-owned but belong to individuals or subsidiaries with whom we work. We enroll both their and our corporate devices in Intune to manage policies, ensure optimal security settings through compliance reviews, and deploy a VPN client for secure access to our internal network resources.

Microsoft Intune has provided valuable insight into the status of our independent computers, which previously lacked a management agent and had no standardized security policies. We could not enforce password expiration policies, hardened passwords, or even minimum password requirements, with some users relying on six-character passwords. By enrolling these devices in Intune, we have enforced more robust security measures, such as a minimum eight-character password length, and gained visibility into device compliance to ensure adherence to best security practices for data protection.

The Intune user experience is good, especially with the many improvements made to the web interface over the years. It has always been designed as a simpler interface than Configuration Manager, and Microsoft has done a good job in achieving this goal.

Dynamic groups are more efficient than static groups, which require manually adding members. This was cumbersome, especially when onboarding new people, as it necessitated manually adding them to the appropriate groups. Dynamic groups allow us to set conditions for automatic membership, eliminating the need for user intervention or manual review and ensuring a seamless workflow.

Microsoft Intune's app deployment presents challenges for non-MSI and non-store apps, particularly EXEs, requiring the use of a Win32 wrapper tool and adding overhead to the process. Additionally, deploying device-specific installers, such as VPN clients, is complicated by the inability to target users directly, necessitating knowledge of device names that may not be readily available. Furthermore, the web interface lacks detailed information for MDM-enrolled devices, such as the user's UPN, requiring the use of Graph Explorer API and necessitating Global Admin consent to access device properties. Enhancing app deployment, enabling user-targeted device application deployment, and improving the web interface, particularly for MDM-enrolled devices, by providing comprehensive device information and customizable columns, would significantly streamline Intune's usability.

Microsoft Intune should enhance flexibility and features to better match the granularity available in systems like SCCM.

I have been using Microsoft Intune for over five years.

Microsoft Intune has been stable, and I have not noticed any specific stability issues. While we've encountered problems with other services like Exchange, Intune has remained unaffected.

Scaling Intune is challenging due to the various device types we manage. Our parent company's mobile devices were already enrolled, and we've added our independent Windows devices, with plans to include corporate devices soon. A key hurdle is the lack of visibility into user attributes in Intune, hindering our ability to create dynamic groups effectively. Ideally, we want to automatically segregate devices based on user properties like primary use, but currently, dynamic groups seem limited to device properties. This forces manual group assignment after user enrollment, which is inefficient and reliant on user notification. Improved dynamic group functionality, particularly the ability to leverage user attributes, would significantly streamline device management.

Customer support has been reasonable overall. However, there have been cases, such as issues with BitLocker recovery keys, where support was less effective, leading to multiple hand-offs and delays.

Neutral

Before Intune, the independent devices were unmanaged without any agent. For corporate devices, we previously used SCCM.

The initial deployment of Microsoft Intune was fairly straightforward, despite a few challenges due to our unusual configuration of two on-premise domains syncing to our Azure tenant. This dual user sync caused issues because some users remained on the older domain, leading to conflicts when automated systems modified on-premise account attributes. These modifications triggered Azure to switch the sync to the other account, resulting in login failures for users with cached credentials from the old account. While we've mostly identified the cause and the fix, we still encounter this issue occasionally.

The deployment was handled in-house. Our organization benefited from having skilled personnel and guidance from our parent company.

The return on investment includes successfully distributing applications like a VPN client and Office 365. As a result, independent devices now have better application access, encouraging even non-enrolled entities to request Intune enrollment.

We considered Tanium for managing independent devices, but it's a comprehensive endpoint management tool with more functionality than we needed. Management felt it would introduce unnecessary overhead. Since all our corporate devices are currently managed with Intune, adding independent devices would require segregation. Ultimately, we opted for Intune due to its ease of use, allowing us to create targeted policies from scratch.

I would rate Microsoft Intune a seven out of ten.

Public Cloud

Microsoft Azure

I use Microsoft Intune to check if laptops are compliant or not, and to check if applications are added to user profiles. Sometimes there are applications users cannot find in the Company Portal or on their laptops, so we try to add them to their profiles. We can check if there are issues with Windows updates and verify if they have the latest version. We can check by hostname or serial number of the laptop if a user's computer is compliant or has access to the enterprise company platform resources.

The best features of Microsoft Intune include helping to know if computers are configured correctly and if users have access to apps or the platform. It provides an excellent overview of all machines for the company and helps determine if those machines are facing issues. It is particularly helpful when laptops face issues with upgrading or migrating to Windows 10 or Windows 11.

Automation has room for improvement in Microsoft Intune for fixing some errors. The knowledge and database in support can also be improved. If errors aren't in the database, we need to check forums or Google to understand and troubleshoot them. The most important improvement needed for Microsoft Intune is to have a comprehensive database about what each error means exactly and what steps to take for troubleshooting.

I have been using Microsoft Intune for about four years.

The stability of Microsoft Intune rates at nine out of ten.

Microsoft Intune has saved approximately 30% of time.

Users are mostly satisfied with Microsoft Intune because it helps them understand what's happening on their laptops. For some issues, I can assist depending on Microsoft Intune access. When comparing Microsoft Intune with other tools, the pricing is acceptable and it's easy to use. I recommend Microsoft Intune; it should be used in companies using Windows. I rate Microsoft Intune eight out of ten.

On-premises

I use Microsoft Intune on corporate devices as well as bring your own devices. It is always within an enterprise environment. I deal with industries such as manufacturing and health.

Microsoft Intune provides a more secure way by offering MFA policy, conditional access policies, and R-back policies. I can set up all my GPO policies, and Microsoft is moving these features to Microsoft Intune.

I could not discuss all the areas that need improvement due to time constraints. However, there are definitely challenges that could be addressed.

I have been using Microsoft Intune for around five to six years.

I rate Microsoft support between six to eight. The support often involves third parties hired by Microsoft who are knowledgeable, but sometimes the help I receive is not adequate.

Neutral

I previously used Blackberry until it was discontinued, which led me to switch to Microsoft Intune.

The setup is not difficult. The deployment time depends on the project specifics.

I rate the return on investment for Microsoft Intune as seven out of ten.

The pricing and licensing depend on my company's budget. If the company can afford it, it is manageable.

Overall, I would rate Microsoft Intune as eight out of ten.

Other

I use Microsoft Intune to manage devices and Windows, including Linux and macOS. It provides a zero-touch experience for provisioning mobile devices like iOS, iPad, Android, and macOS. It offers security and serves as a management tool where multiple products can be managed.

Microsoft Intune helps me manage devices and Windows, including Linux and macOS. It provides a zero-touch experience for provisioning mobile devices like iOS, iPad, Android, and macOS. It offers security and acts as a management tool where multiple products can be managed. Having all endpoint and security management tools in one place reduces the IT department's workload, making provisioning devices faster compared to traditional methods.

The reporting part needs improvement, and it would be beneficial if it could integrate with third-party tools instead of just Power BI. Additionally, the inventories could be enhanced.

I have ten years of experience working with Microsoft Intune. I also have experience with Jamf Pro, which I have used for four years.

I can give Microsoft Intune a ten out of ten for stability.

I can give Microsoft Intune a nine out of ten for scalability.

Customer service is good, and I would rate it nine out of ten.

Positive

I did not use any other solution before Microsoft Intune.

The initial setup was conducted in-house, and no external integrator or consultant was used.

We did not use an integrator or consultant; everything was done in-house.

Microsoft Intune is a cost-saving solution, reducing IT department workload and allowing for faster device provisioning compared to traditional methods. However, I am not sure about the exact savings per month or year.

I find the price somewhat affordable.

I never evaluated any other options before choosing Microsoft Intune.

My advice is to improve the reporting capabilities and integrate with third-party tools. I rate the overall solution nine out of ten.

Public Cloud

Other

I have been working with Microsoft Intune for the last seven years. Before that, I worked on competitive platforms like MobileIron and Citrix Endpoint Management. These are MDM platforms, and when compared to them, Intune is one of the best solutions from Microsoft. I currently play a role as a Microsoft Intune architect, designing and implementing solutions for customers, managing iOS devices, and Android devices, and now it's growing in managing Windows devices. Previously, SCCM was used as an on-premise solution for clients, but now they are moving to Microsoft Intune as a cloud solution with better security and functions.

Windows Autopilot is one of the best features. It offers security and helps us know which device a user is using before it is enrolled. 

Autopilot has various features, making it easy to manage Windows devices. In the migration of existing SCCM devices to Microsoft Intune, we use Group Policy Analytics, which simplifies copying existing policies to Intune and reduces migration time significantly. 

Comparing iOS devices, DEP is an exceptional solution integrated with Microsoft Intune. It allows for better visibility and actions on devices. 

The Volume Purchase Program (VPP) from Apple is also beneficial as it reserves licenses for specific applications, which we can integrate with Intune.

In terms of improvements, regarding Windows devices, Microsoft needs to enhance options for copying existing policies to Intune. 

Some configurations are not available with Intune and exist in group policy, so they should be added to Intune immediately. Most customers are migrating from on-premise to cloud, and this should be a priority. 

The synchronization of devices takes a significant amount of time, between 15 minutes and two hours. Microsoft should work on reducing this sync time to improve efficiency.

I have been working with Microsoft Intune for the last seven years.

When a particular device issue is not resolved, I report it to Microsoft, who will take it over and add it in the next quality or feature updates. It will take time, but it will definitely be resolved.

Positive

I previously used MobileIron, a notable solution in the market. At that time, Microsoft Intune was not an option. MobileIron was one of the best solutions despite its high cost for users. Microsoft Intune is cost-effective, and integrating it with other Microsoft services, like Windows 10 and 11, is beneficial. I have also worked on Citrix Endpoint Management.

The redeployment of Intune is quite simple. Level four support is managed by Microsoft. Previously, with on-premise solutions, disaster recovery was essential. Microsoft Intune cloud environments should develop their own disaster recovery solutions.

Overall, Microsoft Intune covers more than seventy percent of the market. I have worked on numerous projects within a consulting company, most of which involved Microsoft Intune. It is one of the leading products for MDM solutions.

PKI is typically managed by a separate team, though on-premise PKI is fine. Microsoft provides solutions like SCEP for certificate distribution, which another team can manage. Certificate distribution and authentication, such as MFA, can be defined on the Internet with SCEP to distribute certificates to end users. For example, WiFi authentication can use certificate-based methods. My overall product rating is nine out of out.

Hybrid Cloud

Microsoft Azure